Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.5

    HIGH
    CVE-2000-0085

    Hotmail does not properly filter JavaScript code from a user's mailbox, which allows a remote attacker to execute code via the LOWSRC or DYNRC parameters in the IMG tag.... Read more

    Affected Products : hotmail
    • EPSS Score: %12.04
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0057

    Cold Fusion CFCACHE tag places temporary cache files within the web document root, allowing remote attackers to obtain sensitive system information.... Read more

    Affected Products : coldfusion_server
    • EPSS Score: %3.22
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0051

    The Allaire Spectra Configuration Wizard allows remote attackers to cause a denial of service by repeatedly resubmitting data collections for indexing via a URL.... Read more

    Affected Products : spectra
    • EPSS Score: %0.66
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-1999-0876

    Buffer overflow in Internet Explorer 4.0 via EMBED tag.... Read more

    Affected Products : internet_explorer ie
    • EPSS Score: %24.14
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2000-0059

    PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute commands.... Read more

    Affected Products : php
    • EPSS Score: %4.09
    • Published: Jan. 04, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0077

    The October 1998 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the ps and grep commands.... Read more

    Affected Products : hp-ux
    • EPSS Score: %0.19
    • Published: Jan. 02, 2000
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2000-0082

    WebTV email client allows remote attackers to force the client to send email without the user's knowledge via HTML.... Read more

    Affected Products : webtv
    • EPSS Score: %36.56
    • Published: Jan. 02, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2000-0078

    The June 1999 version of the HP-UX aserver program allows local users to gain privileges by specifying an alternate PATH which aserver uses to find the awk command.... Read more

    Affected Products : hp-ux
    • EPSS Score: %0.06
    • Published: Jan. 02, 2000
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-0964

    Buffer overflow in FreeBSD setlocale in the libc module allows attackers to execute arbitrary code via a long PATH_LOCALE environment variable.... Read more

    Affected Products : freebsd
    • EPSS Score: %0.08
    • Published: Jan. 01, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2000-0069

    The recover program in Solstice Backup allows local users to restore sensitive files.... Read more

    Affected Products : solstice_backup
    • EPSS Score: %0.12
    • Published: Jan. 01, 2000
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2000-0120

    The Remote Access Service invoke.cfm template in Allaire Spectra 1.0 allows users to bypass authentication via the bAuthenticated parameter.... Read more

    Affected Products : spectra
    • EPSS Score: %0.48
    • Published: Jan. 01, 2000
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1587

    /usr/ucb/ps in Sun Microsystems Solaris 8 and 9, and certain earlier releases, allows local users to view the environment variables and values of arbitrary processes via the -e option.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %0.12
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-1999-1472

    Internet Explorer 4.0 allows remote attackers to read arbitrary text and HTML files on the user's machine via a small IFRAME that uses Dynamic HTML (DHTML) to send the data to the attacker, aka the Freiburg text-viewing issue.... Read more

    Affected Products : internet_explorer
    • EPSS Score: %17.72
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-1464

    Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled interface to an interface that does not have DFS ... Read more

    Affected Products : ios
    • EPSS Score: %0.35
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-1328

    linuxconf before 1.11.r11-rh3 on Red Hat Linux 5.1 allows local users to overwrite arbitrary files and gain root access via a symlink attack.... Read more

    Affected Products : linux
    • EPSS Score: %0.06
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1332

    gzexe in the gzip package on Red Hat Linux 5.0 and earlier allows local users to overwrite files of other users via a symlink attack on a temporary file.... Read more

    Affected Products : linux
    • EPSS Score: %0.16
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 3.6

    LOW
    CVE-1999-1300

    Vulnerability in accton in Cray UNICOS 6.1 and 6.0 allows local users to read arbitrary files and modify system accounting configuration.... Read more

    Affected Products : unicos
    • EPSS Score: %0.09
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-1999-1585

    The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges.... Read more

    Affected Products : sunos
    • EPSS Score: %0.05
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-1999-1474

    PowerPoint 95 and 97 allows remote attackers to cause an application to be run automatically without prompting the user, possibly through the slide show, when the document is opened in browsers such as Internet Explorer.... Read more

    Affected Products : powerpoint
    • EPSS Score: %7.39
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-1999-1364

    Windows NT 4.0 allows local users to cause a denial of service (crash) via an illegal kernel mode address to the functions (1) GetThreadContext or (2) SetThreadContext.... Read more

    Affected Products : windows_nt
    • EPSS Score: %0.37
    • Published: Dec. 31, 1999
    • Modified: Apr. 03, 2025
Showing 20 of 290184 Results